Login Sign Up

CVE-2025-24124

5.5 MEDIUM
Denial of Service

📋 TL;DR

A parsing vulnerability in Apple operating systems can cause unexpected application termination when processing malicious files. This affects users of iOS, iPadOS, macOS, visionOS, watchOS, and tvOS. The issue has been addressed through improved input validation checks.

💻 Affected Systems

Products:
  • iOS
  • iPadOS
  • macOS
  • visionOS
  • watchOS
  • tvOS
Versions: Versions prior to iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3, iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3
Operating Systems: Apple iOS, Apple iPadOS, Apple macOS, Apple visionOS, Apple watchOS, Apple tvOS
Default Config Vulnerable: ⚠️ Yes
Notes: All default configurations are vulnerable. The vulnerability affects file parsing functionality across multiple Apple platforms.

📦 What is this software?

Ipados by Apple

View all CVEs affecting Ipados →

Ipados by Apple

View all CVEs affecting Ipados →

Iphone Os by Apple

View all CVEs affecting Iphone Os →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Macos by Apple

macOS is Apple's desktop and laptop operating system powering Mac computers used by millions of professionals, developers, creative professionals, and enterprise users worldwide. Built on a Unix foundation with the Darwin kernel and modern Cocoa frameworks, macOS delivers a seamless ecosystem integr...

Learn more about Macos →

Tvos by Apple

View all CVEs affecting Tvos →

Visionos by Apple

View all CVEs affecting Visionos →

Watchos by Apple

View all CVEs affecting Watchos →

⚠️ Risk & Real-World Impact

🔴

Worst Case

Denial of service through application crashes, potentially disrupting critical workflows or services.

🟠

Likely Case

Temporary application crashes requiring user restart, causing minor productivity disruption.

🟢

If Mitigated

No impact if patched; unpatched systems may experience occasional crashes from malicious files.

🌐 Internet-Facing: LOW - Requires user interaction to open malicious files, not directly exploitable over network.
🏢 Internal Only: MEDIUM - Malicious files could be distributed internally via email, messaging, or file shares.

🎯 Exploit Status

Public PoC: ✅ No
Weaponized: UNKNOWN
Unauthenticated Exploit: ✅ No
Complexity: MEDIUM

Exploitation requires user interaction to open a malicious file. No public exploit code is currently available.

🛠️ Fix & Mitigation

✅ Official Fix

Patch Version: iPadOS 17.7.4, macOS Ventura 13.7.3, macOS Sonoma 14.7.3, visionOS 2.3, iOS 18.3 and iPadOS 18.3, macOS Sequoia 15.3, watchOS 11.3, tvOS 18.3

Vendor Advisory: https://support.apple.com/en-us/122066

Restart Required: Yes

Instructions:

1. Open Settings app. 2. Navigate to General > Software Update. 3. Download and install the latest available update. 4. Restart device when prompted.

🔧 Temporary Workarounds

Restrict file sources

all

Only open files from trusted sources and avoid downloading files from unknown origins.

🧯 If You Can't Patch

  • Implement application whitelisting to restrict which applications can open files
  • Deploy endpoint protection that can detect and block malicious file parsing attempts

🔍 How to Verify

Check if Vulnerable:

Check current OS version against affected versions list. If running older than patched versions, system is vulnerable.

Check Version:

iOS/iPadOS: Settings > General > About > Version. macOS: Apple menu > About This Mac > macOS version.

Verify Fix Applied:

Verify OS version matches or exceeds the patched versions listed in the fix information.

📡 Detection & Monitoring

Log Indicators:

  • Application crash logs showing unexpected termination during file parsing operations
  • System logs showing repeated application launches after crashes

Network Indicators:

  • Unusual file downloads from untrusted sources to Apple devices

SIEM Query:

source="apple_system_logs" AND (event="app_crash" OR event="unexpected_termination") AND process="*parser*"

📊 Metadata

CVE ID: CVE-2025-24124
CVSS v3 Score: 5.5 (MEDIUM)
CVSS Vector: CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:N/I:N/A:H
EPSS Score: 0.03% exploit probability (7.7th percentile)
Published: January 27, 2025
Last Updated: November 3, 2025

🔗 References

📤 Share & Export

📄 Export Markdown 📋 Export JSON